| | |
|---|
| | | if(isset($wb_global)) unset($wb_global); |
|---|
| | | |
|---|
| | | $this->wordbook = $wb; |
|---|
| | | |
|---|
| | | $this->dateformat = $app->lng('conf_format_dateshort'); |
|---|
| | | |
|---|
| | | return true; |
|---|
| | | } |
|---|
| | |
|---|
| | | * @param record = Datensatz als Array |
|---|
| | | * @return record |
|---|
| | | */ |
|---|
| | | function encode($record,$tab) { |
|---|
| | | function encode($record,$tab,$dbencode = true) { |
|---|
| | | global $app; |
|---|
| | | |
|---|
| | | if(!is_array($this->formDef['tabs'][$tab])) $app->error("Tab is empty or does not exist (TAB: $tab)."); |
|---|
| | |
|---|
| | | switch ($field['datatype']) { |
|---|
| | | case 'VARCHAR': |
|---|
| | | if(!@is_array($record[$key])) { |
|---|
| | | $new_record[$key] = (isset($record[$key]))?$app->db->quote($record[$key]):''; |
|---|
| | | $new_record[$key] = (isset($record[$key]))?$record[$key]:''; |
|---|
| | | } else { |
|---|
| | | $new_record[$key] = implode($field['separator'],$record[$key]); |
|---|
| | | } |
|---|
| | | break; |
|---|
| | | case 'TEXT': |
|---|
| | | if(!is_array($record[$key])) { |
|---|
| | | $new_record[$key] = $app->db->quote($record[$key]); |
|---|
| | | $new_record[$key] = $record[$key]; |
|---|
| | | } else { |
|---|
| | | $new_record[$key] = implode($field['separator'],$record[$key]); |
|---|
| | | } |
|---|
| | |
|---|
| | | //if($key == 'refresh') die($record[$key]); |
|---|
| | | break; |
|---|
| | | case 'DOUBLE': |
|---|
| | | $new_record[$key] = $app->db->quote($record[$key]); |
|---|
| | | $new_record[$key] = $record[$key]; |
|---|
| | | break; |
|---|
| | | case 'CURRENCY': |
|---|
| | | $new_record[$key] = str_replace(",",".",$record[$key]); |
|---|
| | |
|---|
| | | $this->errorMessage .= $this->wordbook[$errmsg]."<br />\r\n"; |
|---|
| | | } |
|---|
| | | } |
|---|
| | | |
|---|
| | | |
|---|
| | | |
|---|
| | | //* Add slashes to all records, when we encode data which shall be inserted into mysql. |
|---|
| | | if($dbencode == true) $new_record[$key] = $app->db->quote($new_record[$key]); |
|---|
| | | } |
|---|
| | | } |
|---|
| | | return $new_record; |
|---|
| | |
|---|
| | | } |
|---|
| | | } |
|---|
| | | break; |
|---|
| | | case 'ISIP': |
|---|
| | | //* Check if its a IPv4 or IPv6 address |
|---|
| | | if(function_exists('filter_var')) { |
|---|
| | | if(!filter_var($field_value,FILTER_VALIDATE_IP)) { |
|---|
| | | $errmsg = $validator['errmsg']; |
|---|
| | | if(isset($this->wordbook[$errmsg])) { |
|---|
| | | $this->errorMessage .= $this->wordbook[$errmsg]."<br />\r\n"; |
|---|
| | | } else { |
|---|
| | | $this->errorMessage .= $errmsg."<br />\r\n"; |
|---|
| | | } |
|---|
| | | } |
|---|
| | | } else { |
|---|
| | | //* Check content with regex, if we use php < 5.2 |
|---|
| | | $ip_ok = 0; |
|---|
| | | if(preg_match("/^(\:\:([a-f0-9]{1,4}\:){0,6}?[a-f0-9]{0,4}|[a-f0-9]{1,4}(\:[a-f0-9]{1,4}){0,6}?\:\:|[a-f0-9]{1,4}(\:[a-f0-9]{1,4}){1,6}?\:\:([a-f0-9]{1,4}\:){1,6}?[a-f0-9]{1,4})(\/\d{1,3})?$/i", $field_value)){ |
|---|
| | | $ip_ok = 1; |
|---|
| | | } |
|---|
| | | if(preg_match("/^[0-9]{1,3}(\.)[0-9]{1,3}(\.)[0-9]{1,3}(\.)[0-9]{1,3}$/", $field_value)){ |
|---|
| | | $ip_ok = 1; |
|---|
| | | } |
|---|
| | | if($ip_ok == 0) { |
|---|
| | | $errmsg = $validator['errmsg']; |
|---|
| | | if(isset($this->wordbook[$errmsg])) { |
|---|
| | | $this->errorMessage .= $this->wordbook[$errmsg]."<br />\r\n"; |
|---|
| | | } else { |
|---|
| | | $this->errorMessage .= $errmsg."<br />\r\n"; |
|---|
| | | } |
|---|
| | | } |
|---|
| | | } |
|---|
| | | break; |
|---|
| | | case 'CUSTOM': |
|---|
| | | // Calls a custom class to validate this record |
|---|
| | | if($validator['class'] != '' and $validator['function'] != '') { |
|---|
| | |
|---|
| | | if($field['formtype'] == 'PASSWORD') { |
|---|
| | | $sql_insert_key .= "`$key`, "; |
|---|
| | | if($field['encryption'] == 'CRYPT') { |
|---|
| | | $salt="$1$"; |
|---|
| | | $base64_alphabet='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/'; |
|---|
| | | for ($n=0;$n<8;$n++) { |
|---|
| | | //$salt.=chr(mt_rand(64,126)); |
|---|
| | | $salt.=$base64_alphabet[mt_rand(0,63)]; |
|---|
| | | } |
|---|
| | | $salt.="$"; |
|---|
| | | // $salt = substr(md5(time()),0,2); |
|---|
| | | $record[$key] = crypt(stripslashes($record[$key]),$salt); |
|---|
| | | $record[$key] = $app->auth->crypt_password(stripslashes($record[$key])); |
|---|
| | | $sql_insert_val .= "'".$app->db->quote($record[$key])."', "; |
|---|
| | | } elseif ($field['encryption'] == 'MYSQL') { |
|---|
| | | $sql_insert_val .= "PASSWORD('".$app->db->quote($record[$key])."'), "; |
|---|
| | |
|---|
| | | } else { |
|---|
| | | if($field['formtype'] == 'PASSWORD') { |
|---|
| | | if(isset($field['encryption']) && $field['encryption'] == 'CRYPT') { |
|---|
| | | $salt="$1$"; |
|---|
| | | $base64_alphabet='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/'; |
|---|
| | | for ($n=0;$n<8;$n++) { |
|---|
| | | //$salt.=chr(mt_rand(64,126)); |
|---|
| | | $salt.=$base64_alphabet[mt_rand(0,63)]; |
|---|
| | | } |
|---|
| | | $salt.="$"; |
|---|
| | | // $salt = substr(md5(time()),0,2); |
|---|
| | | $record[$key] = crypt(stripslashes($record[$key]),$salt); |
|---|
| | | $record[$key] = $app->auth->crypt_password(stripslashes($record[$key])); |
|---|
| | | $sql_update .= "`$key` = '".$app->db->quote($record[$key])."', "; |
|---|
| | | } elseif (isset($field['encryption']) && $field['encryption'] == 'MYSQL') { |
|---|
| | | $sql_update .= "`$key` = PASSWORD('".$app->db->quote($record[$key])."'), "; |
|---|
